requireAuth()
Type: preHandlerHookHandler
Access: nauth.helpers.requireAuth()
Protects routes by requiring valid authentication.
Signature
requireAuth(options?: RequireAuthOptions): preHandlerHookHandler
Options
| Option | Type | Default | Description |
|---|---|---|---|
csrf | boolean | true | Validate CSRF token |
Usage
fastify.get('/profile', {
preHandler: nauth.helpers.requireAuth(),
handler: nauth.adapter.wrapRouteHandler(async () => {
return { user: nauth.helpers.getCurrentUser() };
}),
});
// Skip CSRF validation (logout uses GET to avoid CSRF issues)
fastify.get('/logout', {
preHandler: nauth.helpers.requireAuth({ csrf: false }),
handler: logoutHandler,
});
Errors
| Code | Status | When |
|---|---|---|
UNAUTHORIZED | 401 | No valid token |
CSRF_INVALID | 403 | CSRF validation failed |